GitLab announced the launch of GitLab 18, including AI capabilities natively integrated into the platform and major new innovations across core DevOps, and security and compliance workflows that are available now, with further enhancements planned throughout the year.
Sonar has expanded its SonarCloud offering with the availability of two new plans, SonarCloud Enterprise and SonarCloud Team.
SonarCloud is the company’s fully managed SaaS solution for improving the quality and security of human-developed and AI-assisted code at scale.
With the new Enterprise and Team plans for SonarCloud, Sonar empowers development teams of all sizes to deliver Clean Code with confidence.
Sonar’s Clean Code solutions help developers catch bugs, quality concerns, and security flaws early in the development process, as code is being created. This allows them to find and resolve issues before they can make it through to production, improving developer productivity, software quality, and business performance.
The new SonarCloud plans ensure developer teams can leverage SonarCloud as their needs grow, to continuously reduce exposure to risk at all levels and sustain the performance of their software, growing business through systematic development and delivery.
“The adoption of AI coding assistants and the push for faster software development have increased code volume and raised reliability concerns. However, most code scanning tools are just adding to the growing list of issues that are potential threats to business, most of which are false positives. Developers need to be empowered to find issues early and be motivated to fix them with the tools they love and have confidence in. Development teams who use SonarCloud are able to pinpoint and remediate as early in the development process as possible,” said Fabrice Bellingard, VP of Product at Sonar.
SonarCloud Enterprise offers organization-wide portfolio management, new authentication and security features, executive reporting functionality, simplified administration, enterprise service-level agreements, and dedicated commercial support for all customers. Additionally, SonarCloud Enterprise is available on AWS Marketplace, ensuring simplified procurement and onboarding.
- Centralizing Controls: Specific features include enterprise hierarchy, portfolio creation, organization-wide configurable settings, project PDF reporting for technology leads and managers, and security standard reports for IT security teams.
- Authentication and Security: Features that support ongoing security assurance include Single Sign-On (SSO), synchronized access management, and more scalable token management.
- Simplified Administration: At onboarding, default settings can be prepared and applied to all projects with organization-wide project configuration. This relieves the tedious and slow task that large enterprises face of configuring a high number of projects, project by project. Automated project creation at scale also supports ease in standing up SonarCloud. It enables the auto-creation of projects in SonarCloud that were initially built in an enterprise DevOps platform. Additionally, enterprise billing means that billing can be done as a single entity while being applied to multiple organizations.
- Flexible plans to meet the needs of all organizations: SonarCloud’s existing Private Repo plan has been replaced by SonarCloud Team and will continue to provide the reliable, SaaS solution that users trust and rely on today. At an affordable price, SonarCloud Team provides all the benefits of the SonarQube Community Edition plus additional features like branch analysis, pull request decoration, and injection flow detection. With the Team plan, developers can scan both public and private projects for actionable insights that enable consistent and efficient Clean Code delivery all in a simple, fast time-to-value SaaS model hosted by Sonar. Teams also have control to define the quality standard they want their codebase to follow.
The Free plan of SonarCloud will continue to be available and will evolve through the year.
Features described in this release will be made available throughout 2024.
Industry News
Perforce Software is partnering with Siemens Digital Industries Software to transform how smart, connected products are designed and developed.
Reply launched Silicon Shoring, a new software delivery model powered by Artificial Intelligence.
CIQ announced the tech preview launch of Rocky Linux from CIQ for AI (RLC-AI), an operating system engineered and optimized for artificial intelligence workloads.
The Linux Foundation, the nonprofit organization enabling mass innovation through open source, announced the launch of the Cybersecurity Skills Framework, a global reference guide that helps organizations identify and address critical cybersecurity competencies across a broad range of IT job families; extending beyond cybersecurity specialists.
CodeRabbit is now available on the Visual Studio Code editor.
The integration brings CodeRabbit’s AI code reviews directly into Cursor, Windsurf, and VS Code at the earliest stages of software development—inside the code editor itself—at no cost to the developers.
Chainguard announced Chainguard Libraries for Python, an index of malware-resistant Python dependencies built securely from source on SLSA L2 infrastructure.
Sysdig announced the donation of Stratoshark, the company’s open source cloud forensics tool, to the Wireshark Foundation.
Pegasystems unveiled Pega Predictable AI™ Agents that give enterprises extraordinary control and visibility as they design and deploy AI-optimized processes.
Kong announced the introduction of the Kong Event Gateway as a part of their unified API platform.
Azul and Moderne announced a technical partnership to help Java development teams identify, remove and refactor unused and dead code to improve productivity and dramatically accelerate modernization initiatives.
Parasoft has added Agentic AI capabilities to SOAtest, featuring API test planning and creation.
Zerve unveiled a multi-agent system engineered specifically for enterprise-grade data and AI development.
LambdaTest, a unified agentic AI and cloud engineering platform, has announced its partnership with MacStadium(link is external), the industry-leading private Mac cloud provider enabling enterprise macOS workloads, to accelerate its AI-native software testing by leveraging Apple Silicon.
Tricentis announced a new capability that injects Tricentis’ AI-driven testing intelligence into SAP’s integrated toolchain, part of RISE with SAP methodology.